Details
-
Bug
-
Status: Closed
-
Minor
-
Resolution: Fixed
-
7.1 DXP (7.1.10), 7.2 DXP (7.2.10)
-
27
-
19
Description
The Data Engine, Dynamic Data Mapping, and Portal Security SSO module in Liferay DXP is bundled with json-smart 2.3 which has known vulnerabilities. For more details, please see https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe%3A2.3%3Aa%3Ajson-smart_project%3Ajson-smart-v2%3A2.4.2%3A*%3A*%3A*%3A*%3A*%3A*%3A*